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DoD  Global  Information  Grid 
Mission  Assurance 


Anthony  Bargar 
OASD/NII,  DASD(IIA) 

The  DoD’s policy,  planning,  and  ivarfighting  capabilities  are  heavily  dependent  on  the  IT  foundation  provided  by  the 
GIG.  However,  the  GIG  was  built  for  business  efficiency  instead  of  mission  assurance  against  sophisticated  adver¬ 
saries  who  have  demonstrated  intent  and  proven  their  ability  to  use  cyber  as  a  tool for  espionage  and  the  criminal  theft 
of  data.  GIG  mission  assurance  works  to  ensure  the  DoD  is  able  to  accomplish  its  critical  missions  when  networks, 
services,  or  information  are  unavailable,  degraded,  or  distrusted.  This  article  explores  current  threats  to  the  GIG  and 
outlines  the  solutions  that  the  DoD  has  developed  to  protect  our  networks. 


The  information  environment  in 
which  the  DoD  operates  is  global, 
mobile,  and  interconnected.  Depen¬ 
dence  on  shared  critical  information 
infrastructures  are  a  strategic  advantage 
as  well  as  a  weakness.  National  security 
is  challenged  by  sophisticated  adver¬ 
saries  who  have  demonstrated  intent 
and  proven  their  ability  to  use  cyber  as 
a  tool  for  espionage  and  the  criminal 
theft  of  data.  Successfully  defending 
the  DoD’s  networks  and  information 
from  sophisticated  adversaries  is  a  seri¬ 
ous  challenge.  Unlike  the  hacker  com¬ 
munity,  sophisticated  adversaries  are 
well  resourced,  trained,  and  often  have 
the  backing  of  foreign  intelligence  ser¬ 
vices,  transnational  groups,  or  orga¬ 
nized  crime.  Sophisticated  adversaries 
leverage  a  full  range  of  information 
operations  to  achieve  their  goals.  Every 
year,  attempts  to  penetrate  DoD  net¬ 
works  increase;  still,  there  has  been  no 
wide-scale  disruption  of  the  critical 
information  infrastructures  on  which 
the  DoD  depends  for  mission  success. 

However,  in  February  2008,  the  IC 
warned  of  increasing  cyber  attacks  by 
foreign  governments,  non-state  actors, 
and  criminal  elements  exploiting  vul¬ 
nerabilities  of  the  U.S.  information 
infrastructure  [1].  Sophisticated  adver¬ 
saries  have  the  technical  means,  the 
insider  knowledge  of  national  infra¬ 
structures,  and  the  intent  to  manipulate 
data  and  disrupt  critical  and  vulnerable 
national  resources.  At  the  same  time, 
the  DoD  Inspector  General  published 
an  audit  of  the  DoD’s  mission-critical 
IT  systems  which  found  that  61  percent 
lacked  contingency  plans  or  evidence  of 
such  plans,  and  82  percent  have  never 
been  exercised,  leading  the  audit  to 
conclude  that  “  ...  DoD  mission-critical 
systems  may  not  be  able  to  sustain 
warfighter  operations  during  a  disrup¬ 
tive  or  catastrophic  event”  [2]. 

National  security  depends  on  assured 


global  information  infrastructures  that  are 
reliable  and  resilient.  Real-time  risk  man¬ 
agement  and  situational  awareness  are 
essential  to  responding  to  a  cyber  crisis,  as 
is  the  consideration  of  what  national  secu¬ 
rity  missions  are  affected,  potential  cas¬ 
cade  effects,  and  the  prioritized  approach¬ 
es  for  restoration. 

National  security 
depends  on  assured 
global  information 
infrastructures  that  are 
reliable  and  resilient. 
Real-time  risk 
management  and 
situational  awareness 
are  essential  to 
responding  to  a 
cyber  crisis  ... 

The  DoD’s  policy,  planning,  and 
warfighting  capabilities  are  heavily 
dependent  on  the  IT  foundation  pro¬ 
vided  by  the  GIG.  Net-centric  informa¬ 
tion  environments  provide  reliable, 
instant,  and  meaningful  information 
that  shape  DoD  positions,  as  well  as 
prepare  and  enable  a  joint  warfighting 
force  to  dominate  air,  land,  maritime, 
and  space.  In  2006,  the  DoD  aligned 
cyberspace  as  a  warfighting  domain 
alongside  the  traditional  domains  of  air, 
land,  maritime,  and  space.  However,  it 
is  not  a  sanctuary  advantage  for  the 
DoD,  but  a  borderless,  pervasive,  and 
hostile  operating  environment  for  all 


missions. 

In  February  2007,  responding  to 
growing  threats  to  the  GIG,  the  DoD 
took  additional  steps  to  increase 
resilience  against  sophisticated  cyber 
attacks.  DoD  leadership  recognized 
that  the  solution  set  included  a  broad 
spectrum  of  experts  from  lA,  the 
Homeland  Security  Critical  Infrastruc¬ 
ture,  and  the  Joint  Chiefs  of  Staff.  A 
working  group  was  charged  with  ana- 
lyzing  the  issue  and  laying  out  a  plan  of 
action  to  ensure  that  the  DoD  is  able  to 
accomplish  its  critical  missions  when 
networks,  services,  or  information  are 
unavailable,  degraded,  or  untrusted. 
The  DoD’s  mission-essential  functions 
(MEFs)  such  as  deploying  the  armed 
forces,  maintaining  command  authority, 
and  global  situational  awareness  were 
deemed  critical.  GIG  mission  assurance 
was  defined  as  the  level  of  confidence  that 
the  GIG  will  provide  adequate  support  for 
critical  MEFs  in  the  face  of  full-spectrum 
attack  from  a  sophisticated  adversary. 

The  scope  of  the  problem  includes 
the  networks,  services,  and  information 
needed  to  conduct  cyberspace  opera¬ 
tions,  consistent  with  the  National 
Military  Strategy  for  Cyberspace 
Operations  and  other  documents  such 
as  the  National  Strategy  to  Secure 
Cyberspace  [3]  and  the  National 
Response  Framework  [4].  Additionally, 
to  improve  resiliency,  protection,  and 
continuity  of  services,  the  underlying 
infrastructures  such  as  power  and 
telecommunications  networks  are  criti¬ 
cal  to  the  DoD’s  ability  to  conduct  its 
missions.  Guiding  principals  for  the  ini¬ 
tiative  include  the  following: 

•  GIG  mission  assurance  is  a  continu¬ 
ously  changing  and  adapting  set  of 
capabilities  protecting  against  all 
adversaries  which  ensures  execution 
of  mission  essential  functions. 

•  GIG  mission  assurance  is  built  on  sur- 
vivable  communications  (transport). 
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trustable  information  (content),  and 
timely  services  (applications). 

•  Mission  operations  (the  warfighter) 
must  allow  for  and  compensate  for 
failures  and  losses  from  natural  and 
human  adversaries  that  are  persis¬ 
tently  present. 

•  The  GIG  must  provide  force-wide 
survivahle,  robust,  and  resilient 
capabilities  against  sophisticated 
adversaries. 

The  problem  domain  is  large  and 
spans  people,  processes,  technology, 
associated  training,  policy/governance, 
and  architectures.  There  are  many  disci¬ 
plines  and  organizations  involved  with¬ 
in  the  DoD  including,  but  not  limited 
to,  cyber  protection,  detection,  recon¬ 
stitution,  intelligence,  continuity  of 
operations,  and  critical  infrastructure 
protection.  Additionally,  the  DoD’s  role 
in  national  response,  emergency  pre¬ 
paredness,  and  support  must  be  consid¬ 
ered  in  a  holistic  approach  for  address¬ 
ing  how  the  GIG  enables  essential  mis¬ 
sions.  Ensuring  the  DoD  can  accom¬ 
plish  these  missions  while  operating  in 
a  degraded  information  environment 
requires  a  much  broader  range  of  activ¬ 
ities,  and  requires  close  coordination 
between  the  IT  community  and  the 
warfighter.  For  example,  to  accomplish 
the  MEFs,  the  warfighter  must  define 
more  concise  technology  requirements 
as  well  as  train  and  equip  forces  to 
achieve  mission  success  despite  a 
degraded  cyber  domain.  Additionally, 
the  IT  community  must  provide  the 
warfighter  situational  awareness  for 
failure  and  cascade  effects  of  the  GIG 
as  related  to  specific  MEFs,  and  build 
diverse  and  resilient  capabilities.  During 
a  sophisticated  attack,  the  IT  communi¬ 
ty  must  restore  capabilities  to  support 
current  mission  priorities  as  the 
warfighter  compensates  for  loss  in  ser¬ 
vices.  In  short,  the  DoD’s  response 
activities  must  operate  at  the  speed  of 
light,  verses  the  speed  of  policy.  Response 
options  must  be  synchronized,  priori¬ 
tized,  and  coordinated  to  minimize 
effects  on  national  security  missions 
and  ensure  that  MEFs  can  successfully 
survive  an  attack. 

Conclusion  and  2008 
Priorities 

In  a  net-centric  information  environ¬ 
ment  that  is  globally  interconnected, 
there  are  insufficient  resources  to  pro¬ 
tect  and  defend  all  aspects  of  the  GIG 
at  all  times  from  growing  and  asymmet¬ 
ric  threats.  Additionally,  the  DoD  GIG 


can  be  denied  or  degraded  by  non- 
cyber  events  on  dependent  critical 
infrastructures  such  as  power  and 
telecommunications.  A  change  in  phi¬ 
losophy  is  needed,  as  well  as  an  inte¬ 
grating  framework  for  a  holistic 
approach  balancing  resources  and  risk 
to  protect  our  capabilities  which  enable 
MEFs.  There  are  steps  both  strategic 
and  actionable  to  improve  the  DoD’s 
posture  and  ability  to  survive  sophisti¬ 
cated  cyberspace  attacks.  GIG  support 
to  mission  assurance  requires  integrated 
plans,  programs,  and  operations  across 
lA,  computer  network  defense,  cyber¬ 
space  intelligence  activities,  and  critical 
infrastructure  protection.  To  better 
understand  the  shortfalls  and  enable 
solutions,  DoD  priorities  in  this  area 
include  the  following: 

•  Exercising  military  operations  under 
a  severely  degraded  cyber  environ¬ 
ment. 

The  bottom  line  is 
that  the  GIG  is 
DoD  s  force  multiplier 
for  mission  success 
in  air,  land,  sea,  and 
cyberspace  ...  The 
DoD  is  acting 
on  the  solutions 
necessary  to 
ensure  mission 
success. 

•  Improving  resilience,  prioritization 
for  recovery,  and  continuity  of 
operations. 

•  Redefining  network  command  and 
control  capabilities  with  regard  to 
prioritized  reconstitution  of  GIG 
services. 

•  Resourcing  and  planning  for  mis¬ 
sion  assurance  with  combatant  com¬ 
mands,  services,  and  agencies. 

The  bottom  line  is  that  the  GIG  is  the 
DoD’s  force  multiplier  for  mission  success 
in  air,  land,  sea,  and  cyberspace.  The  GIG 
must  compensate  for  loss  due  to  cyber¬ 
space  disruption,  and  the  users  must  pre¬ 
pare  to  operate  in  a  degraded  environ¬ 
ment.  The  DoD  is  acting  on  the  solutions 


necessary  to  ensure  mission  success.^ 
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